Setting the acl name and type, Figure 3-74, Selecting acl type – LevelOne FGL-2870 User Manual

General Security Measures

3-125

3

Setting the ACL Name and Type

Use the ACL Configuration page to designate the name and type of an ACL.

Command Attributes
• Name – Name of the ACL. (Maximum length: 15 characters)
• Type – The following filter modes are supported:

- IP Standard: IPv4 ACL mode filters packets based on the source IPv4 address.
- IP Extended: IPv4 ACL mode filters packets based on the source or destination

IPv4 address, as well as the protocol type and protocol port number. If the “TCP”
protocol is specified, then you can also filter packets based on the TCP control
code.

- IPv6 Standard: IPv6 ACL mode filters packets based on the source IPv6

address.

- IPv6 Extended: IPv6 ACL mode filters packets based on the source or

destination IP address, as well as the type of the next header and the flow label
(i.e., a request for special handling by IPv6 routers).

- MAC – MAC ACL mode filters packets based on the source or destination MAC

address and the Ethernet frame type (RFC 1060).

- ARP – ARP ACL specifies static IP-to-MAC address bindings used for ARP

inspection (see "ARP Inspection" on page 3-136).

Web – Select Security, ACL, Configuration. Enter an ACL name in the Name field,
select the list type (IP Standard, IP Extended, IPv6 Standard, IPv6 Extended, MAC,
or ARP), and click Add to open the configuration page for the new list.

Figure 3-74 Selecting ACL Type

CLI – This example creates a standard IP ACL named david.

Console(config)#access-list ip standard david

4-200

Console(config-std-acl)#